CVE-2004-0341

Name of the Vulnerable Software and Affected Versions WFTPD Pro Server version 3.21 Release 1

Description The issue allows local users to cause a denial of service, specifically CPU consumption, by sending a long command that does not contain a newline. This is because the software allocates memory for a command until a 0Ah byte (newline) is sent.

Recommendations For WFTPD Pro Server version 3.21 Release 1, consider restricting the length of commands to prevent excessive CPU consumption until a fix is available. As a temporary workaround, monitor system resources closely to detect and mitigate potential denial-of-service attacks.